12/22/2005 THU 17:06 FAX 212 619 0276 FAY KAPLUN & MARGIN. LLP 



Rl 005/016 



IN THE CLAIMS 
Please amend the claims as follows: 

1. (Currently Amended) A method for authenticating a roaming device with a network, 
comprising the steps of: 

generating, by an authentication server of the network, authentication data associated with 
the roaming device; 

sendin g, bv the authentication server, the authentication data to access points of fiie network, 
the access points being connected to the authentication server; and 

when the roaming device roams to a particular access point of the access points, using the 
authentication data to locally authenticate the roaming device at tiie particular access point. 

2. (Original) The method according to claim 1, fbrther comprising the stqp of: 
storing the authentication data in a memoiy arrangement of each of the access points. 

3 . (Original) The method according to claim 1 , wherein the sending step includes tiie substeps 

of: 

encrypting the authentication data; and 

sending the encrypted authentication data to selected access points of the access points. 

4. (Currently Amended) The method according to claim 3, wherein the sending step includes 
the substeps of: 

determining at least one access point of the access points using prediction algorithms to 
anticipate where the roaming device will is likely to roam; and 

sending the encrypted authentication data to the at least one access point. 

5. (Original) The method according to claim 3, wherein the sending step includes the substep 
of sending the enoypted authentication data to all the access points. 
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6. (Original) The method according to claim 1, further comprising the preliminary steps of: 
detemuning if the particular access point has authentication data associated with the roaming 

device; 

if the determination is positive, proceed to the step of using ttie authentication data to locally 
authenticate the roaming device at the particular access point; and 

if the determination is negative, proceed to the step of generating, by an authentication server 
of the network, authentication data associated with the roaming device. 

7. (Original) The method according to claim 6, wherein the step of using the auth^tication 
data to locally authenticate the roaming device fiuther comprises reassociating the roaming device 
with the particular access point of the access points by exchanging identification information. 

8. (Original) The method according to claim 7, wherein the reassociating step furttier includes 
ttie substeps of : 

searching a memory arrangement of the particular access point for the authentication data 
associated with the roaming device; and 

if ±e authentication data is found, performing a mutual authentication procedure between 
the roaming device and the particular access point. 

9. (Original) The method according to claim 1 , wherein the generating step further includes 
the steps of: 

receiving an encrypted authentication request from the roaming device; 
determining that the roaming device can be granted access to network services; and 
generating an ^crypted session key associated with the roaming device in the authentication 

server. 
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10. (Currently Amended) A method for authenticating a roaming device with a network, 
comprising the steps of: 

connecting the roaming device with an authentication server upon a contact of the roaming 
device with a first access point of the network; 

authenticating the roaming device with the authentication server; 
generating authentication data for the roaming device; 

distributi ng^ by the authentjcation server, the authentication data to the first access point and 
a second access point of the network; and 

locally authenticating the roammg device upon a contact with the second access point usmg 
the distributed authentication data. 

1 1 . (Original) The method according to claim 10, fiurther comprising tiie step of: 
authenticating the roaming device with the authentication server if the local authentication 

of the roaming device fails, 

12. (Original) The method according to claim 10, wherein the distributing step fiulher includes 

the substep of: 

distributing an encrypted session key to the first and second access points. 

13. (Original) The method according to claim 10, wherein the locally authenticating step fiirther 
includes the substeps of: 

exchanging identification data between the roaming device and the second access point; and 
correlating the identification data with the distributed authentication data. 

14. (Original) The method according to claim 10, fiirther comprising the step of: 
establishing a shared secret encryption between the authentication server and the first and 

second access points. 
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1 5 . (Original) The method according to claim 1 0, wherein the authentication server is a remote 
authentication dial*in user server. 

16: (Original) A system for authenticating a roaming device with a network, comprising: 
an authentication server connected to the network; and 

first and second access points connected to the authentication server, the first and second 
access points being capable of communicating with the roanung device, each of the first and second 
access points including a memory arrangement enable of storing authentication data corresponding 
to the roaming device^ 

wherein the authentication server sends the authentication data to the first and second access 
points upon an initial authentication procedure of the roaming device with the first access point, and 

wherein the second access point locally authenticates the roaming device upon a contact of 
the roaming device with the second access point. 

1 7. (Original) The system according to claim 1 6, wherein the second access point authenticates 
tfie roaming device with the authentication server if the authentication data is not found in 
the memory arrangement of the second access point. 

1 8. (Original) The system according to claim 1 6, wherein the second access point authenticates 
the roaming device with the authentication server if the local authentication of the roaming 
device at the second access point fails. 

19. (Original) A method for authenticating a roaming device with a network, comprising the 
st^s of: 

with an authentication server, receiving an authentication request firom a roaming device, the 
request being encrypted with a first shared code; 

with the authentication server, generating a session key associated with the roaming device; 

sending the session key to an access point of the network, the session key being encrypted 
with a second shared code; and 
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Utilizing the session key to authenticate the roaming device at the access point, and to encrypt 
data exchanged between the roaming device and the access point* 

20. (Original) The method according to claim 19, further comprising the step of; 

sending the encrypted session key to a further access point of the network to authenticate the 
roaming device at the further access point. 

21 . (Original) The method according to claim 1 9, further comprising the steps of: 
generating a first key of the session key to perform authentication of the roaming device at 

the access point; and 

generating a second key of the session key to encrypt data exchanges between the roaming 
device and the access point, the second key being di£ferent fix)m the first key. 
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